Ep # 9 : Finding the NHI Blind Spots
Podcast: The Non-Human & AI Identity PodcastPublished On: Thu Mar 26 2026
Description: 🔐 Are your artificial intelligence and cloud systems hiding identity blind spots that attackers can exploit? In Episode 9 of The Non-Human & AI Identity Podcast, we sit down with Jeff Rich from ISDA to uncover the critical gaps in Non-Human Identity (NHI) security that most organisations overlook.From unmanaged service accounts and API keys to AI agents operating with unchecked access privileges, Jeff breaks down why traditional Identity & Access Management (IAM) frameworks weren't built for the non-human era - and what security teams need to do right now.🎙️ In this episode, we cover:✅ What Non-Human Identities (NHIs) are and why they're your biggest security blind spot✅ How agentic AI and autonomous systems are creating new, untracked attack surfaces✅ Why most IAM programs fail to account for machine identities and service accounts✅ The role of Zero Trust in securing non-human entities across cloud environments✅ How LLM security and prompt injection vulnerabilities compound NHI risk✅ Practical steps to reduce cyber risk from unmanaged non-human identitiesWhether you're a CISO, security architect, or IAM professional, this episode will change how you think about identity security in the age of AI.Connect with Lalit: https://www.linkedin.com/in/lalit-choda-5b924120/Connect with Jeff: https://www.linkedin.com/in/jreich/Visit nhimg.org to learn moreKey Moments - Mr NHI’s Human Identity in the Hot Seat (2:50 – 9:25)- What Are the Major NHI Blind Spots Within Organisations (13:58 – 16:57)- Why Have We Ended Up with a Lot of Blind Spots Around the NHI Space? (17:41 – 21:15)- How Are Practitioners Struggling to Deal with NHI Challenges and Blind Spots? (22:15 – 26:12)- What Are You Hearing from the Practitioners About the Agentic AI Maturity? (28:55 – 31:44)- What Are the Big Security Amplifications and Challenges That AI Agents Bring? (31:46 – 34:25)- Where Are We Now from the Tools, Frameworks, and Standards Standpoint? (35:42 – 39:28)- How Do CISOs or Security Heads Decide What Tools They Should Buy or - Build from a Capabilities Standpoint? (39:58 – 43:51)- What Things Would You Advise Folks to Focus on or Prioritise to Tackle NHI Blind Spots? (44:11 – 47:06)- Closing Thoughts / Advice for the Audience (48:59 – 50:20)#NonHumanIdentity #NHI #Cybersecurity #IAM #IdentityAndAccessManagement #AIsecurity #AgenticAI #ZeroTrust #LLMSecurity #CloudSecurity #CyberRisk #ArtificialIntelligence #AIAgents #PromptInjection #InfoSec #MachinIdentity
The note was deleted
The note was saved
Your message was sent